closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
975 Commits
2 Branches
178 MiB
Tree: 02687cbdf3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '02687cbdf3'
${ noResults }
gitea/cmd/serve.go

198 lines
4.7 KiB
Raw Normal View History

fix
10 years ago
Add command dump and move to cmd did
10 years ago
fix
10 years ago
command dump
10 years ago
fix
10 years ago
bug fixed
10 years ago
fix
10 years ago
Typos - Very small typo fixes
10 years ago
fix
10 years ago
Support private repo
10 years ago
fix
10 years ago
Typos - Very small typo fixes
10 years ago
fix
10 years ago
Support private repo
10 years ago
fix
10 years ago
Typos - Very small typo fixes
10 years ago
fix
10 years ago
bug fixed
10 years ago
fix
10 years ago
Typos - Very small typo fixes
10 years ago
fix
10 years ago
Fix Collaborators cannot commit
10 years ago
fix
10 years ago
add actions for http push
10 years ago
fix
10 years ago
 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package cmd
  6. 

  7. import (
  8. 	//"container/list"

  9. 	"fmt"
  10. 	"os"
  11. 	"os/exec"
  12. 	"path"
  13. 	"strconv"
  14. 	"strings"
  15. 

  16. 	"github.com/codegangsta/cli"
  17. 	qlog "github.com/qiniu/log"
  18. 

  19. 	//"github.com/gogits/git"

  20. 	"github.com/gogits/gogs/models"
  21. 	"github.com/gogits/gogs/modules/base"
  22. )
  23. 

  24. var (
  25. 	COMMANDS_READONLY = map[string]int{
  26. 		"git-upload-pack":    models.AU_WRITABLE,
  27. 		"git upload-pack":    models.AU_WRITABLE,
  28. 		"git-upload-archive": models.AU_WRITABLE,
  29. 	}
  30. 

  31. 	COMMANDS_WRITE = map[string]int{
  32. 		"git-receive-pack": models.AU_READABLE,
  33. 		"git receive-pack": models.AU_READABLE,
  34. 	}
  35. )
  36. 

  37. var CmdServ = cli.Command{
  38. 	Name:        "serv",
  39. 	Usage:       "This command should only be called by SSH shell",
  40. 	Description: `Serv provide access auth for repositories`,
  41. 	Action:      runServ,
  42. 	Flags:       []cli.Flag{},
  43. }
  44. 

  45. func newLogger(execDir string) {
  46. 	logPath := execDir + "/log/serv.log"
  47. 	os.MkdirAll(path.Dir(logPath), os.ModePerm)
  48. 

  49. 	f, err := os.OpenFile(logPath, os.O_WRONLY|os.O_APPEND|os.O_CREATE, os.ModePerm)
  50. 	if err != nil {
  51. 		qlog.Fatal(err)
  52. 	}
  53. 

  54. 	qlog.SetOutput(f)
  55. 	//qlog.SetOutputLevel(qlog.Ldebug)

  56. 	qlog.Info("Start logging serv...")
  57. }
  58. 

  59. func parseCmd(cmd string) (string, string) {
  60. 	ss := strings.SplitN(cmd, " ", 2)
  61. 	if len(ss) != 2 {
  62. 		return "", ""
  63. 	}
  64. 

  65. 	verb, args := ss[0], ss[1]
  66. 	if verb == "git" {
  67. 		ss = strings.SplitN(args, " ", 2)
  68. 		args = ss[1]
  69. 		verb = fmt.Sprintf("%s %s", verb, ss[0])
  70. 	}
  71. 	return verb, args
  72. }
  73. 

  74. func In(b string, sl map[string]int) bool {
  75. 	_, e := sl[b]
  76. 	return e
  77. }
  78. 

  79. func runServ(k *cli.Context) {
  80. 	execDir, _ := base.ExecDir()
  81. 	newLogger(execDir)
  82. 

  83. 	base.NewConfigContext()
  84. 	models.LoadModelsConfig()
  85. 

  86. 	if models.UseSQLite3 {
  87. 		os.Chdir(execDir)
  88. 	}
  89. 

  90. 	models.SetEngine()
  91. 

  92. 	keys := strings.Split(os.Args[2], "-")
  93. 	if len(keys) != 2 {
  94. 		println("auth file format error")
  95. 		qlog.Fatal("auth file format error")
  96. 	}
  97. 

  98. 	keyId, err := strconv.ParseInt(keys[1], 10, 64)
  99. 	if err != nil {
  100. 		println("auth file format error")
  101. 		qlog.Fatal("auth file format error", err)
  102. 	}
  103. 	user, err := models.GetUserByKeyId(keyId)
  104. 	if err != nil {
  105. 		println("You have no right to access")
  106. 		qlog.Fatalf("SSH visit error: %v", err)
  107. 	}
  108. 

  109. 	cmd := os.Getenv("SSH_ORIGINAL_COMMAND")
  110. 	if cmd == "" {
  111. 		println("Hi", user.Name, "! You've successfully authenticated, but Gogs does not provide shell access.")
  112. 		return
  113. 	}
  114. 

  115. 	verb, args := parseCmd(cmd)
  116. 	repoPath := strings.Trim(args, "'")
  117. 	rr := strings.SplitN(repoPath, "/", 2)
  118. 	if len(rr) != 2 {
  119. 		println("Unavailable repository", args)
  120. 		qlog.Fatalf("Unavailable repository %v", args)
  121. 	}
  122. 	repoUserName := rr[0]
  123. 	repoName := strings.TrimSuffix(rr[1], ".git")
  124. 

  125. 	isWrite := In(verb, COMMANDS_WRITE)
  126. 	isRead := In(verb, COMMANDS_READONLY)
  127. 

  128. 	repoUser, err := models.GetUserByName(repoUserName)
  129. 	if err != nil {
  130. 		println("You have no right to access")
  131. 		qlog.Fatal("Get user failed", err)
  132. 	}
  133. 

  134. 	// access check

  135. 	switch {
  136. 	case isWrite:
  137. 		has, err := models.HasAccess(user.LowerName, path.Join(repoUserName, repoName), models.AU_WRITABLE)
  138. 		if err != nil {
  139. 			println("Internal error:", err)
  140. 			qlog.Fatal(err)
  141. 		} else if !has {
  142. 			println("You have no right to write this repository")
  143. 			qlog.Fatalf("User %s has no right to write repository %s", user.Name, repoPath)
  144. 		}
  145. 	case isRead:
  146. 		repo, err := models.GetRepositoryByName(repoUser.Id, repoName)
  147. 		if err != nil {
  148. 			println("Get repository error:", err)
  149. 			qlog.Fatal("Get repository error: " + err.Error())
  150. 		}
  151. 

  152. 		if !repo.IsPrivate {
  153. 			break
  154. 		}
  155. 

  156. 		has, err := models.HasAccess(user.Name, path.Join(repoUserName, repoName), models.AU_READABLE)
  157. 		if err != nil {
  158. 			println("Internal error")
  159. 			qlog.Fatal(err)
  160. 		}
  161. 		if !has {
  162. 			has, err = models.HasAccess(user.Name, path.Join(repoUserName, repoName), models.AU_WRITABLE)
  163. 			if err != nil {
  164. 				println("Internal error")
  165. 				qlog.Fatal(err)
  166. 			}
  167. 		}
  168. 		if !has {
  169. 			println("You have no right to access this repository")
  170. 			qlog.Fatal("You have no right to access this repository")
  171. 		}
  172. 	default:
  173. 		println("Unknown command")
  174. 		qlog.Fatal("Unknown command")
  175. 	}
  176. 

  177. 	models.SetRepoEnvs(user.Id, user.Name, repoName, repoUserName)
  178. 

  179. 	gitcmd := exec.Command(verb, repoPath)
  180. 	gitcmd.Dir = base.RepoRootPath
  181. 	gitcmd.Stdout = os.Stdout
  182. 	gitcmd.Stdin = os.Stdin
  183. 	gitcmd.Stderr = os.Stderr
  184. 

  185. 	if err = gitcmd.Run(); err != nil {
  186. 		println("execute command error:", err.Error())
  187. 		qlog.Fatal("execute command error: " + err.Error())
  188. 	}
  189. 

  190. 	//refName := os.Getenv("refName")

  191. 	//oldCommitId := os.Getenv("oldCommitId")

  192. 	//newCommitId := os.Getenv("newCommitId")

  193. 

  194. 	//qlog.Error("get envs:", refName, oldCommitId, newCommitId)

  195. 

  196. 	// update

  197. 	//models.Update(refName, oldCommitId, newCommitId, repoUserName, repoName, user.Id)

  198. }